Hello All,
I have an instance of GS 2.1.4 on which I use REST to configure new stores, layers, etc. and it works great. I also have an instance of GS 2.2 for which I have tried the same REST requests and I get this error:
< HTTP/1.1 401 Unauthorized
< Server: Apache-Coyote/1.1
< Set-Cookie: SPRING_SECURITY_REMEMBER_ME_COOKIE=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/geoserver
* Authentication problem. Ignoring this.
< WWW-Authenticate: Basic realm="GeoServer Realm"
< Content-Type: text/html;charset=utf-8
< Content-Length: 1299
< Date: Thu, 18 Jul 2013 15:47:41 GMT
This request requires HTTP authentication (No AuthenticationProvider found for org.springframework.security.authentication.UsernamePasswordAuthenticationToken)
Any thoughts?
Thanks,
Steve
--
Stephen Crawford
Center for Environmental Informatics
The Pennsylvania State University
Solved my problem: a "legacy" password that violated the current rules....it works via the GUI but not with REST. Better password and I'm good to go.
On 7/18/2013 11:56 AM, Stephen Crawford wrote:
Hello All,
I have an instance of GS 2.1.4 on which I use REST to configure new
stores, layers, etc. and it works great. I also have an instance of GS
2.2 for which I have tried the same REST requests and I get this error:
< HTTP/1.1 401 Unauthorized
< Server: Apache-Coyote/1.1
< Set-Cookie: SPRING_SECURITY_REMEMBER_ME_COOKIE=""; Expires=Thu,
01-Jan-1970 00:00:10 GMT; Path=/geoserver
* Authentication problem. Ignoring this.
< WWW-Authenticate: Basic realm="GeoServer Realm"
< Content-Type: text/html;charset=utf-8
< Content-Length: 1299
< Date: Thu, 18 Jul 2013 15:47:41 GMT
This request requires HTTP authentication (No AuthenticationProvider
found for
org.springframework.security.authentication.UsernamePasswordAuthenticationToken)
Any thoughts?
Thanks,
Steve
--
Stephen Crawford
Center for Environmental Informatics
The Pennsylvania State University
src176@anonymised.com
814.865.9905
On Thu, Jul 18, 2013 at 7:33 PM, Stephen Crawford <src176@anonymised.com> wrote:
Solved my problem: a "legacy" password that violated the current
rules....it works via the GUI but not with REST. Better password and
I'm good to go.
Wow, that's weird. Christian, how could it happen that it was working on the
GUI side, but not REST
Cheers
Andrea
--
Ing. Andrea Aime
@geowolf
Technical Lead
GeoSolutions S.A.S.
Via Poggio alle Viti 1187
55054 Massarosa (LU)
Italy
phone: +39 0584 962313
fax: +39 0584 1660272
mob: +39 339 8844549
http://www.geo-solutions.it
http://twitter.com/geosolutions_it
-------------------------------------------------------
Hi Andrea
Not easy to make an analysis from here but I assume the following:
In the first mail I see a cookie called
SPRING_SECURITY_REMEMBER_ME_COOKIE
The remember me service is is installed on the web filter chain, but not on the REST filter chain. I assume there was an active remember me cookie. If the user changes his password, the cookie becomes invalid.
Cheers
Christian
···
2013/7/18 Andrea Aime <andrea.aime@anonymised.com.1107…>
On Thu, Jul 18, 2013 at 7:33 PM, Stephen Crawford <src176@anonymised.com> wrote:
–
DI Christian Mueller MSc (GIS), MSc (IT-Security)
OSS Open Source Solutions GmbH
Solved my problem: a “legacy” password that violated the current
rules…it works via the GUI but not with REST. Better password and
I’m good to go.
Wow, that’s weird. Christian, how could it happen that it was working on the
GUI side, but not REST
Cheers
Andrea
–
Ing. Andrea Aime
@geowolf
Technical Lead
GeoSolutions S.A.S.
Via Poggio alle Viti 1187
55054 Massarosa (LU)
Italy
phone: +39 0584 962313
fax: +39 0584 1660272
mob: +39 339 8844549
http://www.geo-solutions.it
http://twitter.com/geosolutions_it